add -badsig option to corrupt CRL signatures for testing too

2024-12-03 06:54:50 +08:00 · 2012-12-02 16:48:25 +00:00 · 2012-12-02 16:48:25 +00:00 · 139cd16cc5
commit 139cd16cc5
parent fdb78f3d88
1 changed files with 6 additions and 1 deletions
--- a/apps/crl.c
+++ b/apps/crl.c
@ -102,7 +102,7 @@ int MAIN(int argc, char **argv)
 	unsigned long nmflag = 0;
 	X509_CRL *x=NULL;
 	char *CAfile = NULL, *CApath = NULL;
-	int ret=1,i,num,badops=0;
+	int ret=1,i,num,badops=0,badsig=0;
 	BIO *out=NULL;
 	int informat,outformat;
 	char *infile=NULL,*outfile=NULL;
@ -208,6 +208,8 @@ int MAIN(int argc, char **argv)
 			fingerprint= ++num;
 		else if (strcmp(*argv,"-crlnumber") == 0)
 			crlnumber= ++num;
+		else if (strcmp(*argv,"-badsig") == 0)
+			badsig = 1;
 		else if ((md_alg=EVP_get_digestbyname(*argv + 1)))
 			{
 			/* ok */
@ -377,6 +379,9 @@ bad:
 		goto end;
 		}

+	if (badsig)
+		x->signature->data[x->signature->length - 1] ^= 0x1;
+
 	if 	(outformat == FORMAT_ASN1)
 		i=(int)i2d_X509_CRL_bio(out,x);
 	else if (outformat == FORMAT_PEM)